Senior SOC Analyst at RSM leading high - severity investigations and guiding SOC's technical direction. Engaging with diverse client organizations in a managed security services environment.
About the role
- Senior Security Engineer detecting, investigating, and responding to security threats at Greenlight. Collaborate with teams to improve security operations and tooling in a cloud-native environment.
Responsibilities
- Serve as a frontline responder for security incidents — triage alerts, lead investigations, coordinate cross-functional response efforts, and drive post-incident reviews and remediation
- Monitor and tune security tooling and detection rules to identify threats across our cloud infrastructure and applications; reduce false positives and improve signal quality
- Perform proactive threat hunting to identify attack patterns, anomalous behavior, and gaps in detection coverage
- Support and maintain security controls across our AWS environment, including monitoring for misconfigurations, access issues, and infrastructure risks
- Contribute to building and improving security automation, scripts, and internal tooling to reduce manual overhead and enhance operational efficiency; grow into deeper engineering contributions over time
- Own the enterprise vulnerability management program, establishing risk-based prioritization frameworks and driving organization-wide remediation strategies
- Spearhead AI/ML integration and automation initiatives to transform security operations, reduce manual overhead, and enhance detection capabilities
- Assist with and contribute to AI-driven security initiatives and automation efforts within the team
- Support ongoing security compliance, audit, and certification programs (e.g., PCI, SOC2)
- Work closely with engineering, infrastructure, and product teams to provide security guidance and support security-by-design practices
- Participate in team knowledge sharing, document runbooks and playbooks, and contribute to continuous improvement of SecOps processes
- Participate in on-call rotation and serve as a first responder to security event escalations
Requirements
- 6+ years of experience in security operations, incident response, or a security analyst role, preferably in cloud-centric environments
- Strong hands-on experience with incident response and investigation alert triage, forensic analysis, root cause determination, and remediation
- Solid understanding of common attack vectors, threat intelligence fundamentals, and attacker tactics, techniques, and procedures (TTPs)
- Working knowledge of cloud security fundamentals (AWS) IAM, VPC, CloudTrail, GuardDuty, Security Hub, or equivalent services
- Familiarity with TCP/IP protocols, network analysis, and common network/security tooling (SIEM, EDR, IDS/IPS)
- Demonstrated ability to identify exploits, vulnerabilities, and misconfigurations and drive remediation in cloud and server environments
- Growth mindset genuine interest in developing engineering skills (scripting, automation, tooling) and growing beyond a pure analyst role
- Ability to participate in an on-call rotation and respond to security event escalations
- Team player comfortable collaborating across India and US teams (primarily PST timezone)
Benefits
- Equal opportunity employer
- Inclusive work environment
- Reasonable accommodations for hiring process
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
Tech skills
Location requirements
Cybersecurity SOC Analyst Intern providing hands - on experience in monitoring security events. Collaborating with experienced analysts to protect organizational systems and data in a hybrid setup.
Security Operations Junior Analyst responsible for security monitoring and incident handling in a technology hub. Working with tools to ensure safety of enterprise information systems 24/7 in Cluj - Napoca.
SOC Analyst managing and responding to security incidents within a digital security team. Involves analyzing security data, collaborating with teams, and implementing security measures.
Information Security Analyst supporting information security function at Ten, a trusted service provider. Ensuring compliance with global standards and managing security risks within the organization.
Security Operations Center Analyst managing incidents and security alerts for 7 - Eleven stores. Focusing on in - depth analysis and proactive monitoring within a state - of - the - art Security Operations Center.
Security Operations Manager at Qnity managing physical security programs across global sites. Overseeing operations and collaborating with cross - functional teams to mitigate risk and maintain secure facilities.
SOC Analyst monitoring security events and responding to incidents at Junglee Games. Collaborating on security protocols to ensure protection of digital assets.
Senior Director of Global Security Operations at CyrusOne strategizing and managing security across global data centers. Driving execution, governance, and operational excellence in a high - availability environment.
Cybersecurity generalist at PwC providing security solutions and maintaining the protection of client systems. Involves monitoring security alerts, incident response, and collaboration with stakeholders.